GRC( ISMS, TPRM,ITGC)

Your work profile As a practitioner in our Cyber Team, youll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -

• Responsible for ISO 27001 based Information Security Management System implementation and sustenance

• Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk

• Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling

• Responsible for conducting clients vendors risk assessment and providing a holistic view of clients risk exposure due to outsourcing

• Responsible for advising and assisting clients to develop and implement Information classification framework

• Conduct Information Systems audits covering IT infrastructure assets

• Serves as technical lead or subject matter specialist on security and privacy implementation projects, responsible for design, build, testing and deployment of solutions

• Demonstrates ability to work independently on projects with limited supervision

• Demonstrates understanding of complex business and information technology management processes

• Demonstrates working knowledge of firm tools and methodologies that may be suitable for the engagement

• Manages day-to-day client relationships at mid and lower levels.

• Participates in proposal development efforts to sell "add-on" work to clients

• Identifies opportunities to improve engagement economics Plays substantive role in designing and implementing business development plan for the service line

• Plays substantive/lead role in retention of professionals and in building staff complement, mix, and recruiting • Undertakes initiatives in people and practice development Desired qualifications

• Cyber experience ranging from 4 year to 12 yrs is mandatory. Levels being hired for: Analyst, Senior Analyst, Consultant, AM, DM

• B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields

• ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification

• Strong communication skills (written & verbal)

• Understanding of basic business and information technology management processes.

• Basic knowledge in one or more security and privacy domains such as: security governance policies and procedures, risk management, compliance, identity management, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection

Work Mode- * Office*